MyCertStack logoMyCertStack

    CompTIA - Security+ Practice Questions & Free Practice Exam

    5 free CompTIA - Security+ practice questions below, with instant explanations. The full simulator contains hundreds of exam-style questions across every topic.

    Question 1

    Software vendors must deliver an update through a public download mirror. Any customer must be able to verify that the file came from the vendor and was not altered in transit. The update file must remain in clear text so any inspection tool may read it. The vendor holds a long-term key pair issued by a trusted certificate authority. Which operation should the vendor perform on the update before publishing it?

    Question 2

    A public transit operator plans a control whose purpose is to block an unwanted action from succeeding in the first place, rather than to record the action after it has happened. Which control type matches this intent?

    Question 3

    Public-facing reverse proxies and authoritative DNS servers need network placement under the three-zone model in the chapter. The internal database that the reverse proxy reaches lives behind a separate firewall layer. Which placement matches the zone model for both new services?

    Question 4

    A retail platform must let users sign in through the corporate identity provider. The receiving application requires cryptographic proof of who the user is for its session creation. Federation tooling supports both authentication and authorisation protocols. Which protocol fits the requirement?

    Question 5

    SCAP and CIS benchmarks sit in the same tooling stack. Which statement correctly describes their relationship?

    Ready for the full CompTIA - Security+ exam simulator?

    Unlock the complete question bank, weighted mock exams, saved-question flashcards, and the Shark AI tutor - all inside your MyCertStack account.